55f4dcbe3a9fecf82f78ba628fb6375e0e800b7d04bae2bc8f78b220926f5c51 | Triage

Sharing

General

Target

514721b58189a2cb0132f06b1061f900_NeikiAnalytics.exe
Size

12KB
Sample

240529-mjwk4acc93
MD5

514721b58189a2cb0132f06b1061f900
SHA1

2f55a861874e9e32990d9ee8ea86695ece396fa7
SHA256

55f4dcbe3a9fecf82f78ba628fb6375e0e800b7d04bae2bc8f78b220926f5c51
SHA512

f0fd4c584fd83d4442964fd556c383acdf436b790deda81fe5fcc5509c99c7e89995b03fc37e14b2ff74cba520de1e606d1b959dc247eca367b5bc58de2a39f3
SSDEEP

384:XL7li/2zsq2DcEQvdQcJKLTp/NK9xaAY:bYMCQ9cAY

Score

7^/10

Malware Config

Targets

- Target
  
  514721b58189a2cb0132f06b1061f900_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  514721b58189a2cb0132f06b1061f900
- SHA1
  
  2f55a861874e9e32990d9ee8ea86695ece396fa7
- SHA256
  
  55f4dcbe3a9fecf82f78ba628fb6375e0e800b7d04bae2bc8f78b220926f5c51
- SHA512
  
  f0fd4c584fd83d4442964fd556c383acdf436b790deda81fe5fcc5509c99c7e89995b03fc37e14b2ff74cba520de1e606d1b959dc247eca367b5bc58de2a39f3
- SSDEEP
  
  384:XL7li/2zsq2DcEQvdQcJKLTp/NK9xaAY:bYMCQ9cAY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2